You can use your existing Aurora PostgreSQL cluster or RDS for PostgreSQL database and enable IAM authentication, or you can create a new one. If you don’t have one, you can provision an Aurora PostgreSQL cluster through the AWS Management Console, AWS CLI, AWS SDK, or by using an AWS CloudFormation template. You must download the certificate from the Amazon S3 bucket that the user guide identifies.Īdditionally, before you create an Aurora database cluster, you must set up your environment for Amazon Aurora. For more information, see Using SSL with a PostgreSQL DB Instance. It is highly recommended to enable SSL certificate verification. You can use SSL to encrypt a PostgreSQL connection between your applications and your PostgreSQL database instances. RDS supports Secure Socket Layer (SSL) encryption for PostgreSQL database instances. The post also walks you through connecting to the cluster using either the psql command line tool or pgAdmin using IAM credentials. ![]() You can follow along using the provided commands to provision resources and configure your environment for IAM authentication. The steps will work equally well on your Amazon RDS for PostgreSQL instance. This post shows you how to use IAM authentication with tools you might already be using to connect to your Aurora PostgreSQL cluster. For more information, see Client Authentication on the PostgreSQL documentation website. You can also still use password authentication. You don’t need to store user credentials in the database, because authentication is managed externally using IAM. Instead, you use an authentication token.Īn authentication token is a unique string of characters that Aurora generates on request, which uses AWS Signature Version 4. ![]() With IAM database authentication, you don’t need to use a password when you connect to a database cluster. Database administrators can associate database users with IAM users and roles. This blog post was last reviewed and updated March, 2022, to cover SQL tools via scripts.Īmazon Relational Database Service (RDS) enables you to use AWS Identity and Access Management (IAM) to manage database access for Amazon RDS for PostgreSQL database instances and Amazon Aurora PostgreSQL clusters.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |